Update for server conf

Author: soonlai814

docker-compose.yml

@@ -3,7 +3,9 @@ services:
   database:
     image: mongo
     container_name: "database"
-    command: [--auth]
+    environment:
+      MONGO_INITDB_ROOT_USERNAME: ${MONGO_USERNAME}
+      MONGO_INITDB_ROOT_PASSWORD: ${MONGODB_PASSWORD}
     restart: always
     ports:
       - "27017:27017"
@@ -21,8 +23,36 @@ services:
       - "8080:8080"
     networks:
       - backend
+    depends_on:
+      - database
+  webserver:
+    image: nginx:latest
+    container_name: webserver
+    ports:
+      - "80:80"
+      - "443:443"
+    restart: always
+    volumes:
+      - ./:/var/www
+      - ./nginx:/etc/nginx/conf.d
+      - ./data/certbot/conf:/etc/letsencrypt
+      - ./data/certbot/www:/var/www/certbot
+    depends_on:
+      - api
+    networks:
+      - backend
+    command: "/bin/sh -c 'while :; do sleep 6h & wait $${!}; nginx -s reload; done & nginx -g \"daemon off;\"'"
+  certbot:
+    image: certbot/certbot
+    volumes:
+      - ./data/certbot/conf:/etc/letsencrypt
+      - ./data/certbot/www:/var/www/certbot
+    networks:
+      - backend
+    entrypoint: "/bin/sh -c 'trap exit TERM; while :; do certbot renew; sleep 12h & wait $${!}; done;'"
 volumes:
-  mongodata:
+  mongodata: 
+    driver: local
 networks:
   backend:
     driver: bridge

nginx/default.conf

@@ -0,0 +1,37 @@
+map $http_upgrade $connection_upgrade {
+  default upgrade;
+  ''      close;
+}
+
+server {
+  listen 80;
+  server_name api.daoventures.co;
+  server_tokens off; # Hide Nginx Version
+
+  location /.well-known/acme-challenge/ {
+      root /var/www/certbot;
+  }
+
+  location / {
+    rewrite ^ https://$host$request_uri? permanent;
+  }
+}
+
+## API backend
+server {
+  listen 443 ssl;
+  server_name api.daoventures.co;
+  server_tokens off; # Hide Nginx Version
+
+  ssl_certificate /etc/letsencrypt/live/api.daoventures.co-0001/fullchain.pem;
+  ssl_certificate_key /etc/letsencrypt/live/api.daoventures.co-0001/privkey.pem;
+
+  include /etc/letsencrypt/options-ssl-nginx.conf;
+  ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem;
+
+  location / {
+    proxy_pass http://api:8080/;
+    proxy_set_header Host $host;
+    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+  }
+}